Comment by moi2388

For the people not understanding the security risk, or how this would be something Google needs to solve, have a look at the claims of Microsoft Id token claims, and how their use of multiple guid claims completely eliminates this problem:

https://learn.microsoft.com/en-us/entra/identity-platform/id...